CVE-2023-42555
First published: Tue Nov 07 2023(Updated: )
Use of implicit intent for sensitive communication vulnerability in EasySetup prior to version 11.1.13 allows attackers to get the bluetooth address of user device.
Credit: mobile.security@samsung.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Samsung Easysetup | <11.1.13 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID of this vulnerability?
The vulnerability ID of this vulnerability is CVE-2023-42555.
What is the title of this vulnerability?
The title of this vulnerability is 'Use of implicit intent for sensitive communication vulnerability in EasySetup prior to version 11.1.13'.
What is the description of this vulnerability?
The description of this vulnerability is 'Use of implicit intent for sensitive communication vulnerability in EasySetup prior to version 11.1.13 allows attackers to get the bluetooth address of user device.'
What is the affected software?
The affected software is Samsung Easysetup prior to version 11.1.13.
What is the severity of this vulnerability?
The severity of this vulnerability is medium (CVSS score of 6.3).
How can I fix this vulnerability?
To fix this vulnerability, update to version 11.1.13 or later of Samsung EasySetup.
- collector/nvd-api
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/tags
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/samsung
- canonical/samsung easysetup